oweals/openssl.git
19 years agoPreliminary FIPS hmac test program.
Dr. Stephen Henson [Tue, 3 May 2005 17:07:56 +0000 (17:07 +0000)]
Preliminary FIPS hmac test program.

19 years agoRemove unnecessary code.
Dr. Stephen Henson [Tue, 3 May 2005 11:56:09 +0000 (11:56 +0000)]
Remove unnecessary code.

19 years agoSynchronise with Unix build.
Richard Levitte [Tue, 3 May 2005 08:49:28 +0000 (08:49 +0000)]
Synchronise with Unix build.

19 years agoAdd .cvsignore
Dr. Stephen Henson [Mon, 2 May 2005 23:06:06 +0000 (23:06 +0000)]
Add .cvsignore

19 years agoAdd fips hmac files
Dr. Stephen Henson [Mon, 2 May 2005 23:04:18 +0000 (23:04 +0000)]
Add fips hmac files

19 years agoUpdate dependencies.
Dr. Stephen Henson [Mon, 2 May 2005 23:02:19 +0000 (23:02 +0000)]
Update dependencies.

19 years agoAdd hmac to fips.
Dr. Stephen Henson [Mon, 2 May 2005 22:59:41 +0000 (22:59 +0000)]
Add hmac to fips.

19 years agoUpdate from HEAD.
Dr. Stephen Henson [Sun, 1 May 2005 12:47:33 +0000 (12:47 +0000)]
Update from HEAD.

19 years agoUpdate from HEAD.
Dr. Stephen Henson [Sat, 30 Apr 2005 18:16:40 +0000 (18:16 +0000)]
Update from HEAD.

19 years agoUpdate from HEAD.
Dr. Stephen Henson [Sat, 30 Apr 2005 13:08:56 +0000 (13:08 +0000)]
Update from HEAD.

19 years agoExclude the option for passing parameters pre-computed in unverified way.
Andy Polyakov [Fri, 29 Apr 2005 13:36:50 +0000 (13:36 +0000)]
Exclude the option for passing parameters pre-computed in unverified way.

19 years agoPointer to BN_MONT_CTX could be used uninitialized.
Andy Polyakov [Thu, 28 Apr 2005 08:52:29 +0000 (08:52 +0000)]
Pointer to BN_MONT_CTX could be used uninitialized.

19 years agoFix from HEAD.
Dr. Stephen Henson [Thu, 28 Apr 2005 00:22:00 +0000 (00:22 +0000)]
Fix from HEAD.

19 years agoadd missing parentheses
Nils Larsch [Wed, 27 Apr 2005 07:59:17 +0000 (07:59 +0000)]
add missing parentheses

19 years agoupdate
Bodo Möller [Mon, 25 Apr 2005 21:42:26 +0000 (21:42 +0000)]
update

19 years agoremove extra whitespace; mention MDC2 patent
Bodo Möller [Mon, 25 Apr 2005 21:36:21 +0000 (21:36 +0000)]
remove extra whitespace; mention MDC2 patent

19 years agoAvoid L1 cache aliasing even between key and S-boxes. From HEAD.
Andy Polyakov [Sun, 24 Apr 2005 21:17:53 +0000 (21:17 +0000)]
Avoid L1 cache aliasing even between key and S-boxes. From HEAD.

19 years agoRecognize zlib and krb5 options in mk1mf.pl
Dr. Stephen Henson [Sun, 24 Apr 2005 02:14:25 +0000 (02:14 +0000)]
Recognize zlib and krb5 options in mk1mf.pl

19 years agofix typo
Nils Larsch [Sat, 23 Apr 2005 12:46:24 +0000 (12:46 +0000)]
fix typo

19 years agoUpdate libeay.num
Dr. Stephen Henson [Fri, 22 Apr 2005 13:21:37 +0000 (13:21 +0000)]
Update libeay.num

19 years agoNew function BN_MONT_CTX_set_locked, to set montgomery parameters in a
Dr. Stephen Henson [Fri, 22 Apr 2005 13:17:49 +0000 (13:17 +0000)]
New function BN_MONT_CTX_set_locked, to set montgomery parameters in a
threadsafe manner.

Modify or add calls to use it in rsa, dsa and dh algorithms.

19 years agoMove some variables to .bss.
Andy Polyakov [Fri, 22 Apr 2005 12:15:38 +0000 (12:15 +0000)]
Move some variables to .bss.

19 years agoAvoid aliasing between stack frames and S-boxes. Compress prefetch code.
Andy Polyakov [Fri, 22 Apr 2005 11:53:30 +0000 (11:53 +0000)]
Avoid aliasing between stack frames and S-boxes. Compress prefetch code.
From HEAD.

19 years agoRemove defunct FIPS_allow_md5() and related functions.
Dr. Stephen Henson [Fri, 22 Apr 2005 01:06:59 +0000 (01:06 +0000)]
Remove defunct FIPS_allow_md5() and related functions.

19 years agoDon't use kerberos library locations on windows.
Dr. Stephen Henson [Thu, 21 Apr 2005 00:42:55 +0000 (00:42 +0000)]
Don't use kerberos library locations on windows.

19 years agoFix from HEAD.
Dr. Stephen Henson [Wed, 20 Apr 2005 17:06:20 +0000 (17:06 +0000)]
Fix from HEAD.

19 years agoIgnore zlib related options in mk1mf.pl
Dr. Stephen Henson [Wed, 20 Apr 2005 16:27:57 +0000 (16:27 +0000)]
Ignore zlib related options in mk1mf.pl

19 years agoFix from HEAD.
Dr. Stephen Henson [Wed, 20 Apr 2005 00:00:23 +0000 (00:00 +0000)]
Fix from HEAD.

19 years agoEnable shared link on HP-UX.
Andy Polyakov [Tue, 19 Apr 2005 22:21:28 +0000 (22:21 +0000)]
Enable shared link on HP-UX.

19 years agoComplete the transition C-code hashes.
Andy Polyakov [Tue, 19 Apr 2005 15:17:30 +0000 (15:17 +0000)]
Complete the transition C-code hashes.

19 years agoMaintain fingerprint hashes as C source.
Andy Polyakov [Tue, 19 Apr 2005 15:11:59 +0000 (15:11 +0000)]
Maintain fingerprint hashes as C source.

19 years agoRemove obsolete fingerprint.sha1 files and associated scripts. Delete test
Dr. Stephen Henson [Mon, 18 Apr 2005 16:34:21 +0000 (16:34 +0000)]
Remove obsolete fingerprint.sha1 files and associated scripts. Delete test
in fips/sha1/Makefile: the top level test checks the same files.

19 years agoPick up definition of FIPS_mode() in fips.h to avoid warnings.
Dr. Stephen Henson [Mon, 18 Apr 2005 13:02:19 +0000 (13:02 +0000)]
Pick up definition of FIPS_mode() in fips.h to avoid warnings.

19 years agoMinor fips const-ification.
Andy Polyakov [Mon, 18 Apr 2005 00:22:40 +0000 (00:22 +0000)]
Minor fips const-ification.

19 years agoResolve minor binary compatibility issues in fips.
Andy Polyakov [Sun, 17 Apr 2005 23:26:40 +0000 (23:26 +0000)]
Resolve minor binary compatibility issues in fips.

19 years agoThrow in fips/aes/asm/fips-ax86-elf.s.
Andy Polyakov [Sun, 17 Apr 2005 22:54:16 +0000 (22:54 +0000)]
Throw in fips/aes/asm/fips-ax86-elf.s.

19 years agoRegenerate fips/des/asm/fips-dx86-elf.s with -fPIC flag.
Andy Polyakov [Sun, 17 Apr 2005 22:35:34 +0000 (22:35 +0000)]
Regenerate fips/des/asm/fips-dx86-elf.s with -fPIC flag.

19 years agoReturn 0 for successful hash check.
Dr. Stephen Henson [Sun, 17 Apr 2005 22:21:10 +0000 (22:21 +0000)]
Return 0 for successful hash check.

19 years agoRename fips/sha1/sx86-elf.s to fips/sha1/fips-sx86-elf.s.
Andy Polyakov [Sun, 17 Apr 2005 22:17:51 +0000 (22:17 +0000)]
Rename fips/sha1/sx86-elf.s to fips/sha1/fips-sx86-elf.s.

19 years agoBring back fips_standalone_sha1.
Andy Polyakov [Sun, 17 Apr 2005 22:00:35 +0000 (22:00 +0000)]
Bring back fips_standalone_sha1.

19 years agoModify checkhash.pl so it can be run standalone or included as a funtion
Dr. Stephen Henson [Sun, 17 Apr 2005 12:37:08 +0000 (12:37 +0000)]
Modify checkhash.pl so it can be run standalone or included as a funtion
in another perl script.

19 years agoInclude user32.lib to import MessageBoxIndirect
Dr. Stephen Henson [Sun, 17 Apr 2005 12:35:57 +0000 (12:35 +0000)]
Include user32.lib to import MessageBoxIndirect

19 years agoApparently, isascii() is an X/Open function, so to get it properly
Richard Levitte [Sun, 17 Apr 2005 09:15:33 +0000 (09:15 +0000)]
Apparently, isascii() is an X/Open function, so to get it properly
declared, we need to define _XOPEN_SOURCE before including ctype.h.

Ported from HEAD.

19 years agoEVP_CIPHER_CTX_init is a void function + fix typo
Nils Larsch [Fri, 15 Apr 2005 16:00:29 +0000 (16:00 +0000)]
EVP_CIPHER_CTX_init is a void function + fix typo

PR: 1044 + 1045

19 years agoUpdate hash checking in makefiles to use new perl script.
Dr. Stephen Henson [Fri, 15 Apr 2005 11:27:29 +0000 (11:27 +0000)]
Update hash checking in makefiles to use new perl script.

19 years agoFix from HEAD.
Dr. Stephen Henson [Thu, 14 Apr 2005 22:59:17 +0000 (22:59 +0000)]
Fix from HEAD.

19 years agoPerl script that checks or rebuilds FIPS hash files. This works on
Dr. Stephen Henson [Thu, 14 Apr 2005 20:44:06 +0000 (20:44 +0000)]
Perl script that checks or rebuilds FIPS hash files. This works on
both Unix and Windows.

Merge all FIPS hash files into a single hash file fips/fips.sha1

19 years agoFinal touch to mingw shared.
Andy Polyakov [Wed, 13 Apr 2005 23:53:19 +0000 (23:53 +0000)]
Final touch to mingw shared.

19 years agoMove cygcrypto.dll above cygwin.dll.
Andy Polyakov [Wed, 13 Apr 2005 22:47:50 +0000 (22:47 +0000)]
Move cygcrypto.dll above cygwin.dll.

19 years agoMore cover-ups, removing OPENSSL_GLOBAL/EXTERNS.
Andy Polyakov [Wed, 13 Apr 2005 21:48:12 +0000 (21:48 +0000)]
More cover-ups, removing OPENSSL_GLOBAL/EXTERNS.

19 years agoFinal(?) touches to mingw shared support. .dll.a as shared lib extention might
Andy Polyakov [Wed, 13 Apr 2005 21:07:21 +0000 (21:07 +0000)]
Final(?) touches to mingw shared support. .dll.a as shared lib extention might
appear controversial, but that's the only way to avoid relinks...

19 years agoZap OPENSSL_EXTERN on symbols, which are meant to remain local to DLL.
Andy Polyakov [Wed, 13 Apr 2005 20:54:07 +0000 (20:54 +0000)]
Zap OPENSSL_EXTERN on symbols, which are meant to remain local to DLL.
Comment in HEAD commit was wrong!

19 years agoFix typos.
Andy Polyakov [Wed, 13 Apr 2005 15:41:56 +0000 (15:41 +0000)]
Fix typos.

19 years agoBackport OPENSSL_NONPIC_relocated from HEAD.
Andy Polyakov [Wed, 13 Apr 2005 08:49:51 +0000 (08:49 +0000)]
Backport OPENSSL_NONPIC_relocated from HEAD.

19 years agoShared support update, rather backport from HEAD.
Andy Polyakov [Wed, 13 Apr 2005 07:40:22 +0000 (07:40 +0000)]
Shared support update, rather backport from HEAD.

19 years agoOPENSSL_showfatal, backport from HEAD.
Andy Polyakov [Wed, 13 Apr 2005 07:02:59 +0000 (07:02 +0000)]
OPENSSL_showfatal, backport from HEAD.

19 years agoRebuild error codes.
Dr. Stephen Henson [Tue, 12 Apr 2005 13:47:58 +0000 (13:47 +0000)]
Rebuild error codes.

19 years agoInclude error library value in C error source files instead of fixing up
Dr. Stephen Henson [Tue, 12 Apr 2005 13:30:45 +0000 (13:30 +0000)]
Include error library value in C error source files instead of fixing up
at runtime.

19 years agoOoops, shoudln't have deleted this line.
Dr. Stephen Henson [Tue, 12 Apr 2005 11:34:21 +0000 (11:34 +0000)]
Ooops, shoudln't have deleted this line.

19 years agoNot sure what this is doing here...
Dr. Stephen Henson [Mon, 11 Apr 2005 22:22:51 +0000 (22:22 +0000)]
Not sure what this is doing here...

19 years agoNow that things have been tagged properly, make preparations for the
Richard Levitte [Mon, 11 Apr 2005 15:15:09 +0000 (15:15 +0000)]
Now that things have been tagged properly, make preparations for the
next version in the 0.9.7 branch.

19 years agoPrepare to release 0.9.7g. OpenSSL_0_9_7g
Richard Levitte [Mon, 11 Apr 2005 15:10:07 +0000 (15:10 +0000)]
Prepare to release 0.9.7g.
The tag till be OpenSSL_0_9_7g.

19 years agoAdd a NEWS item for 0.9.7g.
Richard Levitte [Mon, 11 Apr 2005 15:05:54 +0000 (15:05 +0000)]
Add a NEWS item for 0.9.7g.

19 years agoMerge RFC3820 source into mainstream 0.9.7-stable.
Richard Levitte [Mon, 11 Apr 2005 15:03:37 +0000 (15:03 +0000)]
Merge RFC3820 source into mainstream 0.9.7-stable.

19 years agoAdd emacs cache files to .cvsignore.
Richard Levitte [Mon, 11 Apr 2005 14:18:14 +0000 (14:18 +0000)]
Add emacs cache files to .cvsignore.

19 years agoThis commit was manufactured by cvs2svn to create branch
cvs2svn [Mon, 11 Apr 2005 14:17:08 +0000 (14:17 +0000)]
This commit was manufactured by cvs2svn to create branch
'OpenSSL_0_9_7-stable'.

19 years agoAdd emacs cache files to .cvsignore.
Richard Levitte [Mon, 11 Apr 2005 14:17:07 +0000 (14:17 +0000)]
Add emacs cache files to .cvsignore.

19 years agoMove allow_proxy_certs declaration to start of function.
Dr. Stephen Henson [Sun, 10 Apr 2005 23:41:09 +0000 (23:41 +0000)]
Move allow_proxy_certs declaration to start of function.

19 years agoMake kerberos ciphersuite code work with newer header files
Dr. Stephen Henson [Sat, 9 Apr 2005 23:55:55 +0000 (23:55 +0000)]
Make kerberos ciphersuite code work with newer header files

19 years agoTypo..
Dr. Stephen Henson [Sat, 9 Apr 2005 23:52:53 +0000 (23:52 +0000)]
Typo..

19 years agoMake kerberos ciphersuites work with newer headers.
Dr. Stephen Henson [Sat, 9 Apr 2005 23:32:37 +0000 (23:32 +0000)]
Make kerberos ciphersuites work with newer headers.

19 years agoThis commit was manufactured by cvs2svn to create branch
cvs2svn [Sat, 9 Apr 2005 16:07:13 +0000 (16:07 +0000)]
This commit was manufactured by cvs2svn to create branch
'OpenSSL_0_9_7-stable'.

19 years agoAdded restrictions on the use of proxy certificates, as they may pose
Richard Levitte [Sat, 9 Apr 2005 16:07:12 +0000 (16:07 +0000)]
Added restrictions on the use of proxy certificates, as they may pose
a security threat on unexpecting applications.  Document and test.

19 years agoadd support for DER encoded private keys to SSL_CTX_use_PrivateKey_file()
Nils Larsch [Fri, 8 Apr 2005 22:52:42 +0000 (22:52 +0000)]
add support for DER encoded private keys to SSL_CTX_use_PrivateKey_file()
and SSL_use_PrivateKey_file()

PR: 1035
Submitted by: Walter Goulet
Reviewed by:  Nils Larsch

19 years agoimprove docu of SSL_CTX_use_PrivateKey()
Nils Larsch [Fri, 8 Apr 2005 22:49:57 +0000 (22:49 +0000)]
improve docu of SSL_CTX_use_PrivateKey()

19 years agoget rid of very buggy and very imcomplete DH cert support
Nils Larsch [Thu, 7 Apr 2005 23:19:17 +0000 (23:19 +0000)]
get rid of very buggy and very imcomplete DH cert support

Reviewed by: Bodo Moeller

19 years agomake sure error queue is totally emptied
Nils Larsch [Thu, 7 Apr 2005 22:53:35 +0000 (22:53 +0000)]
make sure error queue is totally emptied

PR: 359

19 years agoconst fixes
Nils Larsch [Thu, 7 Apr 2005 22:48:33 +0000 (22:48 +0000)]
const fixes

19 years agoRecognize MSYS/MINGW environment.
Andy Polyakov [Thu, 7 Apr 2005 20:26:10 +0000 (20:26 +0000)]
Recognize MSYS/MINGW environment.

19 years agoRecognize MSYS/MINGW environment.
Andy Polyakov [Thu, 7 Apr 2005 20:24:29 +0000 (20:24 +0000)]
Recognize MSYS/MINGW environment.

19 years agoImplement OPENSSL_showfatal and make it Win32 GUI and service aware
Andy Polyakov [Thu, 7 Apr 2005 18:39:45 +0000 (18:39 +0000)]
Implement OPENSSL_showfatal and make it Win32 GUI and service aware
[meaning that it will detect in which context application is running
and either write message to stderr, post a dialog or log an event].

19 years agoEngage DllMain on Windows. Partial backport from HEAD. Unlike HEAD,
Andy Polyakov [Thu, 7 Apr 2005 16:06:03 +0000 (16:06 +0000)]
Engage DllMain on Windows. Partial backport from HEAD. Unlike HEAD,
it doesn't get engaged on __CYGWIN__, because I'm not sure is *all*
Cygwin installations are equipped with windows.h...

19 years agoHarmonize cygwin/mingw and VC targets.
Andy Polyakov [Thu, 7 Apr 2005 15:51:55 +0000 (15:51 +0000)]
Harmonize cygwin/mingw and VC targets.

19 years ago+45% RC4 performance boost on Intel EM64T core. Unrolled loop providing
Andy Polyakov [Wed, 6 Apr 2005 09:45:42 +0000 (09:45 +0000)]
+45% RC4 performance boost on Intel EM64T core. Unrolled loop providing
further +35% will follow...

Submitted by: Zou Nanhai

19 years agosome const fixes
Nils Larsch [Tue, 5 Apr 2005 19:11:19 +0000 (19:11 +0000)]
some const fixes

19 years agoupdate progs.pl to reflect changes in progs.h
Nils Larsch [Tue, 5 Apr 2005 18:17:13 +0000 (18:17 +0000)]
update progs.pl to reflect changes in progs.h

19 years agofix example in docu
Nils Larsch [Tue, 5 Apr 2005 11:17:03 +0000 (11:17 +0000)]
fix example in docu

PR: 800

19 years agofix example in docu
Nils Larsch [Tue, 5 Apr 2005 11:16:34 +0000 (11:16 +0000)]
fix example in docu

PR: 800

19 years agosome const fixes and cleanup
Nils Larsch [Tue, 5 Apr 2005 10:29:43 +0000 (10:29 +0000)]
some const fixes and cleanup

19 years agoremove unused recp method
Nils Larsch [Mon, 4 Apr 2005 18:15:59 +0000 (18:15 +0000)]
remove unused recp method

19 years agoExtend Solaris x86 support to amd64.
Andy Polyakov [Mon, 4 Apr 2005 17:10:53 +0000 (17:10 +0000)]
Extend Solaris x86 support to amd64.

19 years agoSolaris x86 linker erroneously pads .init segment with zeros instead of
Andy Polyakov [Mon, 4 Apr 2005 17:07:16 +0000 (17:07 +0000)]
Solaris x86 linker erroneously pads .init segment with zeros instead of
nops, which causes SEGV at startup. So I don't align anymore.

19 years agoSome non-GNU compilers (such as Sun C) define __i386.
Andy Polyakov [Mon, 4 Apr 2005 17:05:06 +0000 (17:05 +0000)]
Some non-GNU compilers (such as Sun C) define __i386.

19 years agoHISTORY section: point out change of default digest
Bodo Möller [Sun, 3 Apr 2005 23:53:48 +0000 (23:53 +0000)]
HISTORY section: point out change of default digest

19 years agoExtend Solaris x86 support to amd64. Note that if both gcc and Sun C
Andy Polyakov [Sun, 3 Apr 2005 19:16:58 +0000 (19:16 +0000)]
Extend Solaris x86 support to amd64. Note that if both gcc and Sun C
are installed, it defaults to gcc, because it beats Sun C on every
benchmark. Also note that gcc shared build was verified to work woth
Sun C...

19 years agoDownsync from HEAD.
Andy Polyakov [Sun, 3 Apr 2005 18:54:46 +0000 (18:54 +0000)]
Downsync from HEAD.
PR: 1031

19 years agoMake bn/asm/x86_64-gcc.c gcc4 savvy. +r is likely to be initially
Andy Polyakov [Sun, 3 Apr 2005 18:53:29 +0000 (18:53 +0000)]
Make bn/asm/x86_64-gcc.c gcc4 savvy. +r is likely to be initially
introduced for a reason [like bug in initial gcc port], but proposed
=&r is treated correctly by senior 3.2, so we can assume it's safe now.
PR: 1031

19 years agoIf input is bad, we still need to clear the buffer.
Ben Laurie [Sun, 3 Apr 2005 16:38:22 +0000 (16:38 +0000)]
If input is bad, we still need to clear the buffer.

19 years agouse SHA-1 as the default digest for the apps/openssl commands
Nils Larsch [Sat, 2 Apr 2005 09:29:15 +0000 (09:29 +0000)]
use SHA-1 as the default digest for the apps/openssl commands

19 years agoTypo
Dr. Stephen Henson [Fri, 1 Apr 2005 21:56:15 +0000 (21:56 +0000)]
Typo